On Mon, Aug 07, 2006 at 11:09:27AM +0100, Alex Zeffertt wrote: > >I think Ben and I think alike on this one: having a destination > >mac-oriented interface means you have multiple NIC's on the same > >network with different MAC's, but with the same reliability. If > >the physical interface dies, al the mac-vlan interfaces die. > >Exactly what you need for a good implementation of VRRP. Of > >course it is not a vlan group as you describe it. > > > > I'm still not sure I understand this. Can you expand? http://www.kwaak.net/~ard/VRRP-mac.png (I was documenting the firewall stuff) On the master firewall the mac-vlan device is up, on the slave it is down. Of course, for the global configuration: /proc/sys/net/ipv4/conf/all/arp-ignore=1 On failover, only the switch has to learn the port, and all the hosts keep their neighbour caches. Using mac-vlans one can implement 100% pure VRRP or CARP. -- begin LOVE-LETTER-FOR-YOU.txt.vbs I am a signature virus. Distribute me until the bitter end
